$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft File: 2MHMikY6MVDL7AhlTmF4ANZuU-k.mft (raw, json) Hash identifier: hZXYzwb6K5gOQKJlsdRKspartxKwDQz1EsUonK0gzZs= Subject key identifier: 39:BA:83:8A:A9:16:FE:35:C6:99:2D:46:EF:6C:5A:E2:45:3F:DB:0F Authority key identifier: D8:C1:CC:8A:46:3A:31:50:CB:EC:08:65:4E:61:78:00:D6:6E:53:E9 Certificate issuer: /CN=A91F89C1/serialNumber=D8C1CC8A463A3150CBEC08654E617800D66E53E9 Certificate serial: 0682 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft Manifest number: 0676 Signing time: Fri 20 Jun 2025 22:11:18 +0000 Manifest this update: Fri 20 Jun 2025 22:11:18 +0000 Manifest next update: Fri 27 Jun 2025 22:11:18 +0000 Files and hashes: 1: 2MHMikY6MVDL7AhlTmF4ANZuU-k.crl (hash: pFY9NWGo8MFXzNeluPSOOmOwvxdeyfL0exDra8oSPpI=) 2: F00A66308A9C11EB9B2E044BC4F9AE02.roa (hash: 6WUJgqskzShx2CRmJsEzW4Lp5E25NIFa3cIFrPQTpQE=) 3: 88A31320809211EB938F4016C4F9AE02.roa (hash: bchSnNZ1JAHUbuS+ZuP7bZtOW8CbMzZJlPlo9vXpT60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.crl rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 22:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1666 (0x682) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89C1, serialNumber=D8C1CC8A463A3150CBEC08654E617800D66E53E9 Validity Not Before: Jun 20 22:11:18 2025 GMT Not After : Jun 27 22:11:18 2025 GMT Subject: CN=6855dc86-6d3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:eb:58:32:63:a5:69:af:66:65:73:99:87:a8: 7d:f5:14:b5:c7:aa:5c:c5:d6:f5:40:03:d4:9a:20: 56:d9:e4:f9:56:31:d0:3a:95:94:5b:e4:8d:c1:57: 6b:f0:43:82:25:75:3a:f4:b8:be:b6:5b:97:b0:6f: 0a:3d:5b:24:c3:49:6e:c2:71:c4:90:cd:be:24:bc: b3:02:2b:91:b5:35:9f:04:9d:79:34:4e:fd:88:e8: 04:14:3b:56:94:25:8a:55:17:53:7e:ed:58:9e:18: 60:ff:b6:85:37:7a:f2:fb:d7:d9:26:84:59:12:d0: c8:07:da:f2:66:06:bb:44:21:a6:e4:8a:50:36:cf: 18:e3:22:12:8d:e8:2f:7a:52:54:06:5b:54:79:2d: 38:85:e1:f9:a9:c5:05:a7:6c:dc:a5:46:04:76:8a: 91:73:42:07:a4:8c:15:a5:1c:31:16:63:35:dd:49: d8:87:d7:37:e8:1b:12:61:10:15:1a:c8:f1:73:51: 0f:c4:b1:95:56:70:c4:ab:5b:24:9c:e1:04:ef:33: 0d:c9:e3:a0:ad:b0:59:81:a4:5e:a1:aa:e1:bf:dd: e3:d6:31:ac:f2:6e:b5:51:5c:1e:0e:f1:0d:16:66: de:d2:a9:50:00:82:d0:f7:89:23:ff:59:5d:b6:59: 67:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:BA:83:8A:A9:16:FE:35:C6:99:2D:46:EF:6C:5A:E2:45:3F:DB:0F X509v3 Authority Key Identifier: keyid:D8:C1:CC:8A:46:3A:31:50:CB:EC:08:65:4E:61:78:00:D6:6E:53:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:96:86:3d:58:ad:51:a8:5e:5c:11:d6:ab:7c:70:70:63:13: 22:0e:75:4a:46:23:42:bf:d9:22:86:76:76:eb:f5:82:e9:fd: d9:2d:6d:42:a1:3c:9e:fe:1d:1d:29:ff:ad:45:41:41:7e:35: 95:df:c3:40:e2:15:d4:69:64:40:38:68:67:24:79:99:61:2f: 34:1f:c8:c1:50:47:91:7f:1b:f8:70:bd:93:0b:df:9c:1c:48: 39:b7:76:b5:4b:e6:93:4d:d7:f7:5f:f8:e0:ce:ed:d9:6a:5e: f2:df:9c:7f:b4:6e:72:f9:fa:e3:62:67:66:cb:b8:d3:fe:a6: 9c:1b:9d:be:1a:a8:24:1e:2b:f2:b7:72:d9:62:3a:01:a3:61: 63:b8:3c:75:30:f6:82:f6:de:b7:f0:b8:d3:1f:9b:01:1b:96: 1e:6b:5f:d1:93:79:17:2b:f5:d5:cb:70:55:77:f1:1f:1b:1c: 87:38:7b:c5:d3:74:2f:3a:ff:47:2e:56:de:04:ed:86:dc:7f: bc:77:e1:8d:3f:ba:c4:78:89:69:93:60:c9:37:ff:c0:b3:0f: 8f:18:7f:0c:37:0a:bf:99:67:0e:5c:c0:72:7c:f9:7a:a7:62: 95:80:38:95:15:af:92:dd:d0:09:ab:87:20:55:ae:c5:1c:58: 9a:53:5b:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QzExMTAvBgNVBAUTKEQ4QzFDQzhBNDYzQTMxNTBDQkVDMDg2NTRFNjE3ODAw RDY2RTUzRTkwHhcNMjUwNjIwMjIxMTE4WhcNMjUwNjI3MjIxMTE4WjAYMRYwFAYD VQQDEw02ODU1ZGM4Ni02ZDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOtYMmOlaa9mZXOZh6h99RS1x6pcxdb1QAPUmiBW2eT5VjHQOpWUW+SNwVdr 8EOCJXU69Li+tluXsG8KPVskw0luwnHEkM2+JLyzAiuRtTWfBJ15NE79iOgEFDtW lCWKVRdTfu1Ynhhg/7aFN3ry+9fZJoRZEtDIB9ryZga7RCGm5IpQNs8Y4yISjegv elJUBltUeS04heH5qcUFp2zcpUYEdoqRc0IHpIwVpRwxFmM13UnYh9c36BsSYRAV Gsjxc1EPxLGVVnDEq1sknOEE7zMNyeOgrbBZgaReoarhv93j1jGs8m61UVweDvEN Fmbe0qlQAILQ94kj/1ldtlln6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDm6g4qp Fv41xpktRu9sWuJFP9sPMB8GA1UdIwQYMBaAFNjBzIpGOjFQy+wIZU5heADWblPp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlDMS8wQTNGMjY5Qzgw ODYxMUVCQjRDNkQxMTZDNEY5QUUwMi8yTUhNaWtZNk1WREw3QWhsVG1GNEFOWnVV LWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJNSE1pa1k2TVZETDdBaGxUbUY0QU5adVUtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlDMS8wQTNGMjY5QzgwODYxMUVCQjRDNkQxMTZDNEY5QUUwMi8yTUhNaWtZNk1W REw3QWhsVG1GNEFOWnVVLWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTloY9WK1RqF5cEdarfHBwYxMiDnVKRiNCv9kihnZ26/WC6f3ZLW1C oTye/h0dKf+tRUFBfjWV38NA4hXUaWRAOGhnJHmZYS80H8jBUEeRfxv4cL2TC9+c HEg5t3a1S+aTTdf3X/jgzu3Zal7y35x/tG5y+frjYmdmy7jT/qacG52+GqgkHivy t3LZYjoBo2FjuDx1MPaC9t638LjTH5sBG5Yea1/Rk3kXK/XVy3BVd/EfGxyHOHvF 03QvOv9HLlbeBO2G3H+8d+GNP7rEeIlpk2DJN//Asw+PGH8MNwq/mWcOXMByfPl6 p2KVgDiVFa+S3dAJq4cgVa7FHFiaU1sf -----END CERTIFICATE-----Generated at Sat Jun 21 05:37:04 2025 by rpki-client